Cybersecurity News that Matters

Cybersecurity News that Matters

Korean security agency helped FBI to take down Hive ransomware gang

by Dain Oh, Arthur Gregory Willers

Oct. 11, 2023
10:25 AM GMT+9

Seoul ― KACS 2023 Fall Conference ― With international cooperation having become a key factor in deterring cybercrimes, a South Korean security agency disclosed on Wednesday that they had contributed to taking down a ransomware gang by collaborating with the U.S. Federal Bureau of Investigation (FBI).

The Korea Internet & Security Agency (KISA) developed a recovery tool for Hive ransomware victims and provided the FBI with the tool last year. “Cyber incidents are inevitable, but the damages still can be minimized,” said Kwon Hyun-o, Head of the Digital Industry Division at KISA, during the Fall Conference hosted by the Korean Association of Cybersecurity Studies (KACS) on October 11.

The Hive ransomware group, once ranked the third most prolific cybercriminals in the world, was shut down by the FBI in January. According to the U.S. Department of Justice, the ransomware gang targeted more than 1,500 victims in over 80 countries, including hospitals, schools, financial companies, and critical infrastructure.

Kwon Hyun-o, Head of the Digital Industry Division at KISA, center, is speaking at the Fall Conference hosted by the Korean Association of Cybersecurity Studies (KACS) on October 11. Photo by Dain Oh, The Readable

It has been known that a multinational operation to disrupt the Hive ransomware group was conducted, but this was the first time for the public to learn that KISA had directly offered a tool to the FBI to interfere with the Hive’s activities.

Since 2018, KISA, as the nation’s foremost security organization tasked with protecting the private sector from cyberthreats, has been working alongside researchers at Kookmin University to develop ransomware recovery tools and distribute them around the globe. In addition, KISA has been sharing information with world governments with the aim of improving overall readiness to respond to cyberattacks, wherever and whenever they might occur.

For the next four years, KISA will collaborate with the U.S. Department of Homeland Security (DHS) to develop technology able to pinpoint and specify fraudulent actors on virtual asset networks, according to Kwon. “The technology to identify illegal transactions on cryptocurrency networks is expected to be especially helpful to a number of law enforcements abroad,” added the Head.

Subscription

Subscribe to our newsletter for the latest insights and trends. Tailor your subscription to fit your interests:

By subscribing, you agree to our Privacy Policy. We respect your privacy and are committed to protecting your personal data. Your email address will only be used to send you the information you have requested, and you can unsubscribe at any time through the link provided in our emails.

  • Dain Oh
    : Author

    Dain Oh is a distinguished journalist based in South Korea, recognized for her exceptional contributions to the field. As the founder and editor-in-chief of The Readable, she has demonstrated her expe...

    View all posts
  • Arthur Gregory Willers

    Arthur Gregory Willers is a copyeditor at The Readable, where he works to make complex cybersecurity news accessible and engaging for readers. With over 20 years in education and publishing, his exper...

    View all posts
Stay Ahead with The Readable's Cybersecurity Insights